Skip to content
/ ApiHashing Public

Replacing GetModuleHandle & GetProcAddress as a God

License

MIT license
3 stars 15 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

SolomonSklash/ApiHashing

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
ApiHashing
ApiHashing
 
 
ApiHashing.sln
ApiHashing.sln
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

ApiHashing: just a stable replacement, that is fast and efficient.

  • no imported functions
  • easy to use
  • compile time seed / string hashes (different hashes everybuild with no need to change anything)
  • saves the module handle by hash, for the next possible api, so that it wont search for the module in peb, but by hash in our map
  • handles forwarded functions

Example:

PVOID pVirtualAlloc = FastGetProcAddress(HASH(kernel32.dll), HASH(VirtualAlloc));
// kernel32.dll handle is now saved, so the next call wont go through the peb one more time ...
PVOID pVirtualProtect = FastGetProcAddress(HASH(kernel32.dll), HASH(VirtualProtect));

Thanks for:

About

Replacing GetModuleHandle & GetProcAddress as a God

Resources

Readme

License

MIT license
Activity

Stars

3 stars

Watchers

1 watching

Forks

15 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages